Filebeat and incompatible CentOS

Munsta0 · January 11, 2016, 7:18pm

Hey All,

Our IT department was tasked with finding and implementing a new log parser for our servers and we chose the ELK solution.

Everything went smooth until we tried to installing filebeat on the servers.

We are running CentOS 5.0 with a kernel 2.6.18 ( too old to support go ) and we can't upgrade.

We have also looked at other solutions such as beaver ( our python version is too old, again can't upgrade it )

So we've been brainstorming on a way around the issue and I would like to ask for advice on a (probably terrible) idea we came up with.

Could it be possible to run the filebeat application on a second server that will pull the few servers that are problematic over ssh? What would the downside be?

Any other solution is also acceptable, of course.

Thanks a bunch.

nradonicich · January 11, 2016, 9:41pm

ship logs with syslog and ingest them to ELK with logstash TCP or SYSLOG input?

ruflin · January 12, 2016, 7:34am

Would it be possible to install Logstash directly on these few servers? Not sure if the ssh solution will work. Filebeat has also issues reading files from shared volumes as sometimes the file identifiers change.

Topic		Replies	Views
Filebeat and CentOS 5 Beats filebeat	2	2853	July 5, 2017
Alternative for CentOS 5 machines Elasticsearch	3	352	December 3, 2020
Filebeat and Minimal Server Install Beats filebeat	4	369	May 10, 2020
Want to Install ELK Stack for my app logs Beats filebeat	2	437	April 14, 2017
Filebeat alternative on RHEL5 Beats filebeat	5	1585	January 31, 2019

Filebeat and incompatible CentOS

Related topics